The Digital Personal Data Protection Bill
We are a Leading PDPB Compliance Expert in India
We have a team of legal and technology experts who possess an in-depth understanding of The Digital Personal Data Protection Bill.
Why choose Mobikasa?
Comprehensive Understanding of the Bill
Our team of legal and technology experts possesses an in-depth understanding of The Digital Personal Data Protection Bill, 2022.
We stay updated with the latest developments, ensuring that our clients receive accurate and relevant advice tailored to their specific business needs.
Compliance Assessment
We provide comprehensive compliance assessments to help businesses identify gaps in their current data protection practices.
Our experts analyze your organization's data handling processes, policies, and infrastructure to ensure alignment with the requirements of the new legislation.
Data Protection Framework
Building a robust data protection framework is essential to comply with the Bill. We assist businesses in designing and implementing effective data protection policies, procedures, and controls.
Our goal is to help you establish a culture of data privacy that safeguards sensitive information and builds trust with your customers.
Consent Management
The Bill emphasizes the importance of obtaining valid consent for collecting and processing personal data.
We can help you develop robust consent management processes that ensure compliance with the regulations, while also enhancing transparency and accountability in your data practices.
Data Breach Preparedness
In today's digital landscape, the risk of data breaches is a constant concern.
Our team can help you develop and implement data breach response plans, including incident identification, containment, investigation, and mitigation strategies.
We also provide guidance on reporting requirements and liaising with regulatory authorities if a breach occurs.
Here are some of the key provisions of the PDPB:
- Consent: The PDPB requires businesses to obtain consent from individuals before processing their personal data. Consent must be freely given, specific, informed, and unambiguous.
- Data minimization: The PDPB requires businesses to collect only the personal data that is necessary for the specific purpose for which it is being collected.
- Data security: The PDPB requires businesses to take all reasonable steps to secure personal data from unauthorized access, use, disclosure, alteration, or destruction.
- Data breach notification: The PDPB requires businesses to notify the Data Protection Authority (DPA) of any data breaches within 72 hours of becoming aware of the breach.
- Individual rights: The PDPB gives individuals a number of rights with respect to their personal data, including the right to access their personal data, the right to correct their personal data, the right to delete their personal data, and the right to object to the processing of their personal data.
Who is affected by the PDPB?
The PDPB applies to any business that collects, stores, or uses personal data of individuals in India. This includes businesses that are located in India, as well as businesses that are located outside of India but that collect, store, or use personal data of individuals in India.
What are the penalties for non-compliance with the PDPB?
The penalties for non-compliance with the PDPB can be significant. Businesses that are found to be in non-compliance with the PDPB can be fined up to ₹2 crore (approximately $250,000 USD) or 4% of their global turnover, whichever is higher. In addition, businesses that are found to be in non-compliance with the PDPB can be banned from processing personal data in India.